https://github.com/christopwner/splunk-logstash

Example docker compose configuration for Logstash with Splunk.
https://github.com/christopwner/splunk-logstash

logstash splunk

Last synced: 3 months ago
JSON representation

Example docker compose configuration for Logstash with Splunk.

Host: GitHub
URL: https://github.com/christopwner/splunk-logstash
Owner: christopwner
Created: 2020-11-10T20:34:47.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2020-11-23T19:21:49.000Z (over 4 years ago)
Last Synced: 2025-01-28T16:33:03.490Z (4 months ago)
Topics: logstash, splunk
Language: Shell
Homepage:
Size: 11.7 KB
Stars: 0
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# splunk-logstash
Example docker compose configuration for Logstash with Splunk.

## how to use
Run with:

`# docker-compose up`

Append to `app.log` to test logging to splunk:

`tail -n1 app.log >> app.log`

Navigate to http://localhost:8000 to view splunk deployment and logs. The password for `admin` login is in the `.env` file.

## caveat
Be aware of possible permission issues with the `settings/filebeats.yml` file. Requires `root` ownership and owner/group write only. That can be setup with following:

* `# chown root settings/filebeats.yml`
* `# chmod go-w settings/filebeats.yml`

See https://www.elastic.co/guide/en/beats/libbeat/current/config-file-permissions.html for more info.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/christopwner/splunk-logstash

Awesome Lists containing this project

README